- "Markets for Cybercrime Tools and Stolen Data -- Hackers’ Bazaar" - PDF, 65 pages
Though it's sponsored by Juniper Networks, I don't see any evidence that the analysis or report were slanted. This report should be useful for people in industry, government, and academia (a rare feat!).
While they do a broad survey of the cybercrime ecosystem, they examine botnets and zero-day exploit markets in detail. What's important about this report is that it provides a thorough analysis of the innovation capabilities and trajectories in the cybercrime ecosystem. This is vital to understand to guide investment decisions, architecture decisions, and R&D decisions beyond a 1 year time horizon.
Here's a timeline that documents the growing sophistication and innovation capability:
|Black Market timeline (part 1) -- click to enlarge|